User Profile
Doug_San
MicrosoftJoined 8 years ago
User Widgets
Recent Discussions
Re: Unsanctioned Apps - Scoped Profile Tab
This feature only applies to device groups, from Defender for Endpoint. Have you created any Device Groups in Defender for Endpoint, before going into the Cloud App settings? https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/machine-groups?view=o365-worldwide2.2KViews0likes1CommentRe: Enforce MFA when user download sensitive document
Like VasilMichev and Keith_Fleming said, authentication context can help here, as long you are using Azure AD Conditional Access to send the user session for Defender for Cloud apps. One minor observation: Although you can do this at the SPO site level, you don't need to. You can invoke re-authentication via authentication context as an action of file inspection. In other words, after you configure Azure AD authentication context polices to require MFA, you can change the action on your session police from "Block" to "Require step-up authentication" and map to the policy you created in Azure AD. The only caveat is that if the user has already performed MFA before, granted that everything remains the same, (user in good state/same device/browser) the MFA prompt will be satisfied silently by cached token in the computer/browser.2KViews0likes1CommentMicrosoft Defender for Cloud Apps feature roadmap survey
Hello Defender for Cloud Apps Tech Community, The Microsoft Defender for Cloud Apps team would like to hear your feedback about our product and features that are important for your organization. We invite you to provide feedback, which will be used to help drive feature development for the next semester (CY23H1). The survey is available at: https://aka.ms/DefenderForCloudAppsSurvey and will be open until September 27th, 2022. We really appreciate your time and feedback; we know your time is valuable. Thank you, Microsoft Defender for Cloud Apps Team.1.1KViews0likes0Comments
